Resources are identifyable only by the following attributes:
| Resource type | Key attribute | Description of key attribute | Examples of key attribute |
|---|---|---|---|
| Run | ID | A base 36 number | 1b, 3nm, 1vr |
| Runner | Name | A Twitch username | glacials, batedurgonnadie, snarfybobo |
| Game | Shortname | An SRL abbreviation | sms, sm64, portal |
| Category | ID | A base 10 number | 312, 1456, 11 |
Your code shouldn't care too much about what these attributes actually are, as they're all represented as unique strings. But of course as a human it's nice to be able to glean some meaning out of them.
curl https://splits.io/api/v4/runs/10x
curl https://splits.io/api/v4/runs/10x?historic=1A Run maps 1:1 to an uploaded splits file.
| Field | Type | Can it be null? | Description |
|---|---|---|---|
id |
string | never | Unique ID for identifying the run on Splits I/O. This can be used to construct a user-facing URL or an API-facing one. |
srdc_id |
string | when no associated speedrun.com run | Unique ID for identifying the run on speedrun.com. This is typically supplied by the runner manually. |
realtime_duration_ms |
number | never | Realtime duration in milliseconds of the run. |
realtime_sum_of_best_ms |
number | never | Realtime sum of best in milliseconds of the run. |
gametime_duration_ms |
number | never | Gametime duration in milliseconds of the run. |
gametime_sum_of_best_ms |
number | never | Gametime sum of best in milliseconds of the run. |
default_timing |
string | never | The timing used for the run. Will be either real or game. |
program |
string | never | The name of the timer with which the run was recorded. This is typically an all lowercase, no-spaces version of the program name. |
attempts |
number | when not supported by the source timer | The number of run attempts recorded by the timer that generated the run's source file. |
image_url |
string | when not supplied by runner | A screenshot of the timer after a finished run. This is typically supplied automatically by timers which support auto-uploading runs to Splits I/O. |
created_at |
string | never | The time and date at which this run's source file was uploaded to Splits I/O. This field conforms to ISO 8601. |
updated_at |
string | never | The time and date at which this run was most recently modified on Splits I/O (modify events include disowning, adding a video or speedrun.com association, and changing the run's game/category). This field conforms to ISO 8601. |
video_url |
string | when not supplied by runner | A URL for a Twitch, YouTube, or Hitbox video which can be used as proof of the run. This is supplied by the runner. |
game |
Game | when unable to be determined / not supplied by runner | The game which was run. An attempt is made at autodetermining this from the source file, but it can be later changed by the runner. |
category |
[Category][cagegory] | when unable to be determined / not supplied by runner | The category which was run. An attempt is made at autodetermining this from the source file, but it can be later changed by the runner. |
runners |
array of Runners | never | The runner(s) who performed the run, if they claim credit. |
segments |
array of Segments | never | The associated segments for the run. |
If a historic=1 param is included in the request, one additional field will be present:
| Field | Type | Null when... | Description |
|---|---|---|---|
histories |
array of History objects | never | Ordered history objects of all previous runs. The first item is the first run recorded by the runner's timer into the source file. The last item is the most recent one. This field is only nonempty if the source timer records history. |
Segment objects have the following format:
| Field | Type | Can it be null? | Description |
|---|---|---|---|
name |
string | never | Name of the segment. This value is an exact copy of timers' fields. |
segment_number |
number | never | The segment number of the run. (This value starts at 0) |
realtime_start_ms |
number | never | The total elapsed time of the run at the moment when this segment was started in realtime. Provided in milliseconds. |
realtime_duration_ms |
number | never | Realtime duration in milliseconds of the segment. |
realtime_end_ms |
number | never | The total elapsed time of the run at the moment when this segment was finished in realtime (such that the run's duration is equal to the final split's finish time). Provided in milliseconds. |
realtime_shortest_duration_ms |
number | when not known | The shortest duration the runner has ever gotten on this segment in realtime. Provided in milliseconds |
realtime_gold |
boolean | never | Whether or not this split was the shortest duration the runner has ever gotten on this segment in realtime. This field is shorthand for realtime_duration_ms == realtime_shortest_duration_ms. |
realtime_skipped |
boolean | never | Whether or not this split was skipped in realtime -- some timers let the runner skip over a split in case they forgot to hit their split button on time. Beware that a skipped split's duration is considered 0, and instead is rolled into the following split. |
realtime_reduced |
boolean | never | Whether or not this segment was "reduced" in realtime; that is, had its duration affected by previous splits being skipped. |
gametime_start_ms |
number | never | The total elapsed time of the run at the moment when this segment was started in gametime. Provided in milliseconds. |
gametime_duration_ms |
number | never | Gametime duration in milliseconds of the segment. |
gametime_end_ms |
number | never | The total elapsed time of the run at the moment when this segment was finished in gametime (such that the run's duration is equal to the final split's finish time). Provided in milliseconds. |
gametime_shortest_duration_ms |
number | when not known | The shortest duration the runner has ever gotten on this segment in gametime. Provided in milliseconds |
gametime_gold |
boolean | never | Whether or not this split was the shortest duration the runner has ever gotten on this segment in gametime. This field is shorthand for duration == best. |
gametime_skipped |
boolean | never | Whether or not this split was skipped in gametime -- some timers let the runner skip over a split in case they forgot to hit their split button on time. Beware that a skipped split's duration is considered 0, and instead is rolled into the following split. |
gametime_reduced |
boolean | never | Whether or not this segment was "reduced" in gametime; that is, had its duration affected by previous splits being skipped. |
If a historic=1 param is included in the request, one additional field will be present:
| Field | Type | Null when... | Description |
|---|---|---|---|
histories |
array of History objects | never | Ordered history objects of all previous runs. The first item is the first run recorded by the runner's timer into the source file. The last item is the most recent one. This field is only nonempty if the source timer records history. |
History objects have the following format.
| Field | Type | Null when... | Description |
|---|---|---|---|
attempt_number |
number | never | The correpsonding attempt number this attempt was. |
realtime_duration_ms |
number | never | The realtime duration this attempt took in milliseconds. |
gametime_duration_ms |
number | never | The gametime duration this attempt took in milliseconds. |
A note when passing historic=1 along with your request: Adding historical data to the response can take a long time to
render, so please only request it if you are actually using it. Be prepared for your request to time out for runs that
have a lot of historical information present.
If an Accept header is present, Splits I/O will try to render the run file in the format specified rather than JSON. A full list of valid values is located below.
If the Accept header is valid, the Content-Type header in the response will be set appropriately and the run will be rendered in the specified format, if
an invalid Accept header is supplied, the response Content-Type header will be application/json, and the status code will be a 406.
In the 406 reponse there will be an array of values that can be rendered.
Accept Headers Supported |
Return Format | Return Content-Type |
|---|---|---|
| None | JSON | application/json |
application/json |
JSON | application/json |
application/wsplit |
WSplit | application/wsplit |
application/time-split-tracker |
Time Split Tracker | application/time-split-tracker |
application/splitterz |
SplitterZ | application/splitterz |
application/livesplit |
LiveSplit | application/livesplit |
application/urn |
Urn | application/urn |
application/llanfair-gered |
Llanfair-Gered | application/llanfair-gered |
application/original-timer |
Original Run File | One of the following Content-Type's |
If the accept header is application/original-timer then the original file uploaded will be returned as is. Thus it is possible to get back
any of the following Content-Types.
application/shitsplitapplication/splittyapplication/llanfair2application/facesplitapplication/portal-2-live-timerapplication/llanfair-geredapplication/llanfairapplication/urnapplication/livesplitapplication/splitterzapplication/time-split-trackerapplication/wsplit
curl https://splits.io/api/v4/runners?search=glacials
curl https://splits.io/api/v4/runners/glacials
curl https://splits.io/api/v4/runners/glacials/runs
curl https://splits.io/api/v4/runners/glacials/pbs
curl https://splits.io/api/v4/runners/glacials/games
curl https://splits.io/api/v4/runners/glacials/categoriesA Runner is a user who has at least one run tied to their account. Users with zero runs are not discoverable using the API.
| Field | Type | Can it be null? | Description |
|---|---|---|---|
twitch_id |
string | never | The numeric Twitch ID of the user. |
name |
string | never | The Twitch name of the user. |
display_name |
string | never | The Twitch display name of the user. |
avatar |
string | never | The Twitch avatar of the user. |
created_at |
string | never | The time and date at which this user first authenticated with Splits I/O. This field conforms to ISO 8601. |
updated_at |
string | never | The time and date at which this user was most recently modified on Splits I/O. This field conforms to ISO 8601. |
curl https://splits.io/api/v4/games?search=mario
curl https://splits.io/api/v4/games/sms
curl https://splits.io/api/v4/games/sms/categories
curl https://splits.io/api/v4/games/sms/runs
curl https://splits.io/api/v4/games/sms/runnersMost timers allow users to specify a "game" field. A Game is a collection of information about the video game specified in this field. By definition, Games have at least one run and have an associated shortname, usually scraped from SRL or SRDC, but sometimes specified manually.
| Field | Type | Can it be null? | Description |
|---|---|---|---|
name |
string | never | The full title of the game, like "Super Mario Sunshine". |
shortname |
string | when not known | A shortened title of the game, like "sms". Where possible, this name tries to match with those on SpeedRunsLive and/or Speedrun.com. |
created_at |
string | never | The time and date at which this game was created on Splits I/O. This field conforms to ISO 8601. |
updated_at |
string | never | The time and date at which this game was most recently modified on Splits I/O. This field conforms to ISO 8601. |
categories |
array of Categories | never | The known speedrun categories for this game. |
curl https://splits.io/api/v4/categories/40
curl https://splits.io/api/v4/categories/40/runners
curl https://splits.io/api/v4/categories/40/runsSome timers allow users to specify a "category" or similar field (any%, 100%, MST, etc.). A Category is a collection of information about the type of run performed, more specific than a Game. Each Category belongs to a Game. Any number of Categories can be associated with a Game.
| Field | Type | Can it be null? | Description |
|---|---|---|---|
id |
string | never | The numeric ID of the category. |
name |
string | never | The name of the category. |
created_at |
string | never | The time and date at which this category was created on Splits I/O. This field conforms to ISO 8601. |
updated_at |
string | never | The time and date at which this category was most recently modified on Splits I/O. This field conforms to ISO 8601. |
curl -X POST https://splits.io/api/v4/runs # then...
curl -X POST https://s3.amazonaws.com/splits.io --form file=@/path/to/file # some fields not shown; see belowUploading runs is a two-step process. Our long-term storage for runs is on S3, so in the first request you'll tell Splits I/O that you're about to upload a run, then in the second you'll upload it directly to S3 using some parameters returned from the first. The two-request system is faster for you (we don't have to receive your whole run then make you wait for us to put it on S3) and more resilient for us (we don't have to spend a bunch of CPU time waiting on uploads).
The first request will return a body like
{
"status": 201,
"message": "Run reserved. Use the included presigned request to upload the file to S3, with an additional `file` field containing the run file.",
"id": "rez",
"claim_token": "pBeUPBM9IaWqbaF11ocUksXS",
"uris": {
"api_uri": "https://splits.io/api/v4/runs/rez",
"public_uri": "https://splits.io/rez",
"claim_uri": "https://splits.io/rez?claim_token=pBeUPBM9IaWqbaF11ocUksXS"
},
"presigned_request": {
"method": "POST",
"uri": "https://s3.amazonaws.com/splits.io",
"fields": {
"key": "splits/rez",
"policy": "gibberish",
"x-amz-credential": "other gibberish",
"x-amz-algorithm": "more gibberish",
"x-amz-date": "even more gibberish",
"x-amz-signature": "most gibberish",
}
}
}The above example would have your second request look like
curl -X POST https://s3.amazonaws.com/splits.io \
--form key="splits/rez" \
--form policy="gibberish" \
--form x-amz-credential="other gibberish" \
--form x-amz-algorithm="more gibberish" \
--form x-amz-date="even more gibberish" \
--form x-amz-signature="most gibberish" \
--form file=@/path/to/fileThis is called a presigned request. Each field above -- except file, that's yours -- is directly copied from the
response of the first request. You don't need to inspect or care about the contents of the fields, as long as you
include them. They serve as authorization for you to upload a file to S3 with Splits I/O's permission.
Each presigned request can only be successfully made once, and expires if not made within an hour.
If you want to upload, disown, or delete runs for a user (e.g. from within a timer), you have two options. If you only need to know who a user is on Splits I/O, skip to advanced.
Upload the run without auth and direct the user to the URL in the response body's uris.claim_uri. If they are logged
in when they visit it, their account will automatically claim the run. If they are not logged in, their browser will
save the claim token in LocalStorage and show a prompt allowing them to claim the run after logging in, immediately or
at any later time.
This is the far easier method to implement, but the user must open the run in their web browser for it to become theirs. If you prefer to upload runs in the background, this method isn't for you.
The advanced option is a standard OAuth2 flow. You can request permission from the user to upload runs to their account on their behalf. If they accept, you will receive an OAuth token which you can include in your run requests in order to perform actions as that user.
The following instructions go into naive-case details about implementing this OAuth support in your application. If you want to learn more about OAuth or need general OAuth troubleshooting help, you can research OAuth2 online. Especially if your application is a website, it's likely that the language you're using has well-established libraries that handle much of the below OAuth flow for you.
In all cases, you'll need to first go to your Splits I/O account's settings page and create an application, then refer to the relevant section below.
Note: Once you have an OAuth token, you can use a request like this to retrieve information about it:
GET https://splits.io/oauth/token/info?access_token=YOUR_TOKENBelow is a list of all the possible scopes your application can request along with a brief description. You can specify multiple scopes by separating them with spaces in the auth token request.
| Scope | Description | Endpoints |
|---|---|---|
upload_run |
Upload runs on behalf of the user | POST https://splits.io/api/v4/runs |
delete_run |
Delete or disown runs on behalf of the user | DELETE https://splits.io/api/v4/runs/:run_id and DELETE https://splits.io/api/v4/runs/:run_id/user respectively |
If your application runs locally as a program on a user's computer, you should use OAuth's authorization code grant
flow. This means your application will open the Splits I/O authorization page in the user's default browser, and if
the user accepts the authorization, Splits I/O will give your application a code which you should immediately exchange
for an OAuth token using a secure API request.
-
Configure your program to run a small web server on a port of your choosing, and listen for
GETrequests to a path of your choosing. In this example, let's say you're listening on port 8000 for requests to/auth/splitsio. -
On your Splits I/O settings page, set your
redirect_urito something likehttp://localhost:8000/auth/splitsioHint: Set this to "debug" for now if you don't yet have a page to redirect yourself to.
-
When a user wants to grant authorization to your application for their Splits I/O account, send them to a URL like this:
https://splits.io/oauth/authorize?response_type=code&scope=upload_run&redirect_uri=http://localhost:8000/auth/splitsio&client_id=YOUR_CLIENT_IDIf the user authorizes your application, they will be redirected to a URL like
http://localhost:8000/auth/splitsio?code=YOUR_CODEwhich the web server you set up in step 1 should respond to. Give the user a nice-looking HTML page saying to switch back to the application and strip the
codeURL parameter for the next step. -
Use your
codeto make this request:POST https://splits.io/oauth/token
with this body:
grant_type=authorization_code client_id=YOUR_CLIENT_ID client_secret=YOUR_CLIENT_SECRET code=YOUR_CODE redirect_uri=http://localhost:8000/auth/splitsio
which will respond with something like this:
{ "access_token": "0e82e0ac69fed3c6e5044682a9eb94ccded5ace70e84838104a131cb50595cd2", "token_type": "bearer", "expires_in": 7200, "refresh_token": "0e23b095e0d0104ff0642cde71b61d236f3b3865734a0e734714ecd45b25106c", "scope": "upload_run", "created_at": 1499314941 }Success!
access_tokenis your OAuth token for the user. Use it in your API requests to act on behalf of the user by including this header in your requests:Authorization: Bearer YOUR_ACCESS_TOKENThe access token expires after the duration specified in
expires_in(measured in seconds). After it expires, you can retrieve a new one with no user intervention using the returnedrefresh_token:POST https://splits.io/oauth/token
grant_type=refresh_token refresh_token=YOUR_REFRESH_TOKEN
This will return a new access token (and a new refresh token -- update yours!) in a body format identical to original grant (above).
This style of expiring access tokens periodically and using refresh tokens to replace them improves security by making it obvious when a user's stolen credentials are in use. See RFC 6749 for more information on refresh tokens.
If your application is an in-browser JavaScript application with little or no logic performed by a backend server, you should use OAuth's implicit grant flow.
-
On your Splits I/O settings page, set your
redirect_urito where you want users to land after going through the authorization flow. For this example, we'll usehttps://YOUR_WEBSITE/auth/splitsioHint: Set this to "debug" for now if you don't yet have a page to redirect yourself to.
-
When a user wants to grant authorization to your application for their Splits I/O account, send them to a URL like this:
https://splits.io/oauth/authorize?response_type=token&scope=upload_run&redirect_uri=https://YOUR_WEBSITE/auth/splitsio&client_id=YOUR_CLIENT_IDIf the user authorizes your application, they will be redirected to a URL like
https://YOUR_WEBSITE/auth/splitsio#access_token=YOUR_TOKENSuccess!
access_tokenis your OAuth token for the user. Use it in your API requests to act on behalf of the user by including this header in your requests:Authorization: Bearer YOUR_ACCESS_TOKENThe access token expires after the duration specified in
expires_in(measured in seconds). After it expires, you can retrieve a new one with no user intervention using redirection upon accessing your app, or a hidden iframe to invisibly take the user through the authorization flow. If the user is still authorized, no user interaction will be required and you can strip your new access token from the URL fragment.This style of expiring access tokens periodically improves security by limiting the usability of any stolen credentials.
If your application is a website with a backend component, you should use OAuth's authorization code grant flow.
This means your website will link the user to the Splits I/O authorization page, and if the user accepts the
authorization, Splits I/O will give your application a code which it will immediately exchange for an OAuth token
using a secure API request.
-
On your Splits I/O settings page, set your
redirect_urito where you want users to land after going through the authorization flow. For this example, we'll usehttps://YOUR_WEBSITE/auth/splitsioHint: Set this to "debug" for now if you don't yet have a page to redirect yourself to.
-
When a user wants to grant authorization to your application for their Splits I/O account, send them to a URL like this:
https://splits.io/oauth/authorize?response_type=code&scope=upload_run&redirect_uri=https://YOUR_WEBSITE/auth/splitsio&client_id=YOUR_CLIENT_IDIf the user authorizes your application, they will be redirected to a URL like
https://YOUR_WEBSITE/auth/splitsio?code=YOUR_CODEStrip the
codeURL parameter for the next step. -
Use your
codeto make this request:POST https://splits.io/oauth/token
with this body:
grant_type=authorization_code client_id=YOUR_CLIENT_ID client_secret=YOUR_CLIENT_SECRET code=YOUR_CODE redirect_uri=http://localhost:8000/auth/splitsio
which will respond with something like this:
{ "access_token": "0e82e0ac69fed3c6e5044682a9eb94ccded5ace70e84838104a131cb50595cd2", "token_type": "bearer", "expires_in": 7200, "refresh_token": "0e23b095e0d0104ff0642cde71b61d236f3b3865734a0e734714ecd45b25106c", "scope": "upload_run", "created_at": 1499314941 }Success!
access_tokenis your OAuth token for the user. Use it in your API requests to act on behalf of the user by including this header in your requests:Authorization: Bearer YOUR_ACCESS_TOKENThe access token expires after the duration specified in
expires_in(measured in seconds). After it expires, you can retrieve a new one with no user intervention using the returnedrefresh_token:POST https://splits.io/oauth/token
grant_type=refresh_token refresh_token=YOUR_REFRESH_TOKEN
This will return a new access token (and a new refresh token -- update yours!) in a body format identical to original grant (above).
This style of expiring access tokens periodically and using refresh tokens to replace them improves security by making it obvious when a user's stolen credentials are in use. See RFC 6749 for more information on refresh tokens.
curl -X POST https://splits.io/api/v4/convert?format=livesplit --form file=@/path/to/fileWhen converting between timer formats, the file and program parameters must be included. If you are converting a
LiveSplit file and would like to include the history, then the historic=1 parameter can also be included. The JSON
format is outputted as described above in the form of a .json file.
IDs are opaque. To you, the consumer, it doesn't matter what the actual number itself is because the only purpose it serves is be given back to Splits I/O later. You don't need to look inside it, you don't need to perform arithmetic on it, you don't need it rounded or floored or rid of leading zeroes. You don't need to do any numbery things to them. And in fact if you do do numbery things to them, even accidentally, there's a good chance you've broken them in the process.
It doesn't matter that on Splits I/O's end they happen to be auto-incrementing base 10 numbers, because none of that matters to you. By giving you a number type, we'd be implying that it did. Strings are opaque. Strings are what you'd end up casting your IDs to anyway in order to hit the API with them again. So let's just take the negligible hit and save you a step.